Tools
As a digital forensics specialist and tool developer, I focus on automation, analysis support, and modular workflows.
Below is a layout: single selection of my open-source tools developed specifically for DFIR and malware analysis use cases.
DFIR Workstation Guide
A How to Step by Step Guide of how I set up my Windows Forensic Windows Workstations and create a golden Image out of it.
Codeberg: n0raitor/dfir-workstation-guide
DFIR Installer Bundle
DFIR Installer
An automated installer for creating my DFIR-Workstation. Also check out my DFIR-Workstation Guide below.
Codeberg: n0raitor/dfir-installer
DFIR Installer Updater
Update Tool for DFIR-Installer (Start Here)
Codeberg: n0raitor/dfir-installer-updaters
DFIR Installer Selector
Tool to create .conf files for dfir-installer using a GUI
Codeberg: n0raitor/dfir-installer-selector
DFIR Installer Selector
Config Files and Sources for the DFIR-Installer Tool
Codeberg: n0raitor/dfir-installer-files
DFIR Installer Updater
Update Tool for DFIR-Installer (Start Here)
Codeberg: n0raitor/dfir-installer-updaters
Malware Analysis Scripts
A collection of Python and Powershell scripts designed to support for my Malware Analysis Automations
Codeberg: n0raitor/Malware-Analysis-Scripts
kapexplaso-pp
KAPE x Plaso = Hero - A Automated experience of processing KAPE and Creating a KAPE x Filesystem - Supertimeline
Codeberg: n0raitor/kapexplaso-pp
ArchLinux Guide
This is my 2026 created guide of all things archlinux I learned over the past 7 Years. It is based on my old installation guide and tested with the recent archlinux image (note the Readme notice).
Codeberg: n0raitor/archlinux-guide